$ rpki-client -vvf rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/ABF3C76E0C4B11EF87D4886FC4F9AE02.roa File: ABF3C76E0C4B11EF87D4886FC4F9AE02.roa (raw, json) Hash identifier: +OwFewk9ymglfVJ+smaviULwYCdFbGXjXh7fZzykIh0= Subject key identifier: C0:48:AC:F7:D3:EC:A2:1D:05:1D:57:06:A4:5E:F5:1F:3E:97:D1:5B Certificate issuer: /CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Certificate serial: 33D1 Authority key identifier: 85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/ABF3C76E0C4B11EF87D4886FC4F9AE02.roa Signing time: Tue 07 May 2024 08:44:11 +0000 ROA not before: Tue 07 May 2024 08:44:11 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 24107 IP address blocks: 202.49.120.0/24 maxlen: 24 202.49.121.0/24 maxlen: 24 202.164.28.0/22 maxlen: 22 202.164.28.0/23 maxlen: 23 202.164.28.0/24 maxlen: 24 202.164.29.0/24 maxlen: 24 202.164.30.0/23 maxlen: 23 202.164.30.0/24 maxlen: 24 202.164.31.0/24 maxlen: 24 2406:3d00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13265 (0x33d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A03CB/serialNumber=85ABF8480C909638BDCCA653AF1E690F572B23E1 Validity Not Before: May 7 08:44:11 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6639e9db-c018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:31:26:ec:e5:85:0b:5b:d8:d0:8c:2f:2c:a3: da:e2:83:e4:6a:51:6c:03:ca:dd:ba:72:30:d5:98: b8:a3:60:2d:07:6e:c9:f6:84:61:09:7f:07:5a:a7: a6:08:1a:4d:e3:bc:35:0b:de:3c:92:df:50:c9:00: 96:18:3d:5a:fa:1b:42:0e:3d:30:03:e1:a8:8f:67: 83:95:42:21:b0:8b:06:6b:af:1d:e3:1f:0c:c2:4b: 75:9e:e6:2e:2b:bf:3f:2b:0d:a0:2c:61:09:a9:ed: 0d:b0:0a:4c:77:6b:33:b4:62:5a:69:36:5b:7d:af: c5:64:45:82:f9:87:ca:da:57:f2:c0:c2:63:f5:7b: f8:42:17:34:70:64:0a:6e:fb:fa:9e:82:b2:1e:5b: 00:22:3e:19:c4:ba:74:ba:d9:30:3b:87:51:bc:a4: b9:22:aa:7f:38:de:0d:9a:3d:db:dc:60:d8:c2:28: bd:1a:e7:97:ee:28:9e:83:9e:84:63:68:f1:ef:1f: aa:5b:60:68:fc:9d:c8:1f:c6:91:31:63:b9:e4:70: 1e:aa:05:b4:35:6e:1e:47:f3:8e:ea:55:1f:00:8b: 9e:4d:5c:dd:a5:02:14:40:bb:14:48:3e:66:12:dd: 34:2a:53:36:8d:fe:0d:02:fd:c0:f3:87:56:f6:1c: 47:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:48:AC:F7:D3:EC:A2:1D:05:1D:57:06:A4:5E:F5:1F:3E:97:D1:5B X509v3 Authority Key Identifier: keyid:85:AB:F8:48:0C:90:96:38:BD:CC:A6:53:AF:1E:69:0F:57:2B:23:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/hav4SAyQlji9zKZTrx5pD1crI-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hav4SAyQlji9zKZTrx5pD1crI-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A03CB/81D9E4A01D9611E2AAC2147F08B02CD2/ABF3C76E0C4B11EF87D4886FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.120.0/23 202.164.28.0/22 IPv6: 2406:3d00::/32 Signature Algorithm: sha256WithRSAEncryption 63:08:d3:fc:8e:35:e1:3f:9f:de:0b:56:01:85:ae:37:74:c9: 15:91:ad:fd:e6:4a:fe:b8:5f:d3:af:07:9f:03:b1:1a:0a:74: 32:0e:4e:85:98:41:6c:ca:5e:cf:64:5d:59:97:42:c4:42:c0: e0:f5:40:91:80:c4:db:4b:c2:91:84:b3:42:5b:0f:a6:89:36: 93:38:de:3c:80:21:53:7a:84:96:51:1e:1c:b4:26:a0:ca:8b: ce:67:b9:25:08:a0:27:3f:08:48:9e:11:5c:45:fc:11:67:2e: 18:b4:12:c1:4b:b5:03:88:cd:d4:89:1a:df:b1:6d:0d:0a:0f: 99:e2:40:43:ee:bd:e4:d9:92:3c:82:6c:a8:9b:04:dc:6f:4e: c3:20:7e:7c:d6:6d:6f:b1:08:06:6b:5d:65:7c:b4:da:da:c0: 1c:2e:e9:c7:7c:13:96:88:27:2d:04:48:fb:5a:cb:0d:6e:09: 31:b7:a4:57:36:a9:1d:8f:34:86:fa:e3:e5:01:24:03:c8:f5: a4:76:c5:69:a9:f5:b1:9a:5e:fe:8d:1a:8b:6e:7a:db:5d:62: 61:08:4a:92:9a:6e:5a:f6:72:01:c7:be:24:b5:18:f7:02:29: 64:16:a5:95:8f:87:29:d8:27:cf:80:d4:8d:85:74:84:8b:b2: 2d:0d:f1:4b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICM9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAzQ0IxMTAvBgNVBAUTKDg1QUJGODQ4MEM5MDk2MzhCRENDQTY1M0FGMUU2OTBG NTcyQjIzRTEwHhcNMjQwNTA3MDg0NDExWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM5ZTlkYi1jMDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jEm7OWFC1vY0IwvLKPa4oPkalFsA8rdunIw1Zi4o2AtB27J9oRhCX8HWqem CBpN47w1C948kt9QyQCWGD1a+htCDj0wA+Goj2eDlUIhsIsGa68d4x8Mwkt1nuYu K78/Kw2gLGEJqe0NsApMd2sztGJaaTZbfa/FZEWC+YfK2lfywMJj9Xv4Qhc0cGQK bvv6noKyHlsAIj4ZxLp0utkwO4dRvKS5Iqp/ON4Nmj3b3GDYwii9GueX7iieg56E Y2jx7x+qW2Bo/J3IH8aRMWO55HAeqgW0NW4eR/OO6lUfAIueTVzdpQIUQLsUSD5m Et00KlM2jf4NAv3A84dW9hxHhQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFMBIrPfT 7KIdBR1XBqRe9R8+l9FbMB8GA1UdIwQYMBaAFIWr+EgMkJY4vcymU68eaQ9XKyPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDNDQi84MUQ5RTRBMDFE OTYxMUUyQUFDMjE0N0YwOEIwMkNEMi9oYXY0U0F5UWxqaTl6S1pUcng1cEQxY3JJ LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hhdjRTQXlRbGppOXpLWlRyeDVwRDFjckktRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTAzQ0IvODFEOUU0QTAxRDk2MTFFMkFBQzIxNDdGMDhCMDJDRDIvQUJGM0M3NkUw QzRCMTFFRjg3RDQ4ODZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAHKMXgDBALKpBwwDQQCAAIwBwMFACQGPQAwDQYJKoZIhvcN AQELBQADggEBAGMI0/yONeE/n94LVgGFrjd0yRWRrf3mSv64X9OvB58DsRoKdDIO ToWYQWzKXs9kXVmXQsRCwOD1QJGAxNtLwpGEs0JbD6aJNpM43jyAIVN6hJZRHhy0 JqDKi85nuSUIoCc/CEieEVxF/BFnLhi0EsFLtQOIzdSJGt+xbQ0KD5niQEPuveTZ kjyCbKibBNxvTsMgfnzWbW+xCAZrXWV8tNrawBwu6cd8E5aIJy0ESPtayw1uCTG3 pFc2qR2PNIb64+UBJAPI9aR2xWmp9bGaXv6NGotuettdYmEISpKablr2cgHHviS1 GPcCKWQWpZWPhynYJ8+A1I2FdISLsi0N8Us= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:47 2024 by rpki-client on console-fra.rpki-client.org